Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 5 subscribers
  • Views 16319 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Challenge Response

ia-hawk-fan07

Hello we are noticing on Sophos Safeguard Easy 6.0 something that we do not think is right. When doing a challenge response the user is only logged in past Sophos. They are then stopped at Windows to log in. Since the user can not remember their password they are not able to log into Windows. Also since they are not being asked to change their password they are not able to go any further. It seems like we are missing a setting either in Windows or Sophos just not sure what it might be. Any help would be appreciated.

:28985


This thread was automatically locked due to age.
Parents
  • 0

    Hi ia-hawk-fan07,

    first of all, congratulations on your wedding!

    If you are referring to this part;

    "We recommend the following methods to reset the password at Windows level.

    - By using a service or administrator account available on the endpoint computer with the required Windows rights.

    - By using a Windows password reset disk on the endpoint computer.

    As a help desk officer, you can inform the user which procedure should be used and either provide the additional Windows credentials or the required disk."

    this must not necessarily mean that the helpdesk must give out local administrative accounts for the users, but use these accounts to reset the password. I know that there are situations where no local administrator in personal is available and the accounts are given out - but this is where Local Self Help comes into play (if configured by the user) or SafeGuard Enterprise helps out.

    I will open a feature request and see if we can change the implementation in a way that a user is forced to answer the questions if Local Self Help was activated. There should be a setting for this.

    Cheers,

    Chris

    :29511
Reply
  • 0

    Hi ia-hawk-fan07,

    first of all, congratulations on your wedding!

    If you are referring to this part;

    "We recommend the following methods to reset the password at Windows level.

    - By using a service or administrator account available on the endpoint computer with the required Windows rights.

    - By using a Windows password reset disk on the endpoint computer.

    As a help desk officer, you can inform the user which procedure should be used and either provide the additional Windows credentials or the required disk."

    this must not necessarily mean that the helpdesk must give out local administrative accounts for the users, but use these accounts to reset the password. I know that there are situations where no local administrator in personal is available and the accounts are given out - but this is where Local Self Help comes into play (if configured by the user) or SafeGuard Enterprise helps out.

    I will open a feature request and see if we can change the implementation in a way that a user is forced to answer the questions if Local Self Help was activated. There should be a setting for this.

    Cheers,

    Chris

    :29511
Children
No Data
Unfiltered HTML